[JENKINS-53806] Class-based DomainSpecification filter for more flexibility of restricting credentials

Type: New Feature
Resolution: Unresolved
Priority: Minor
Component/s: credentials-plugin
Labels:
None

Similar Issues:
Powered by SuggestiMate

Show

User Story

As an admin of Jenkins, I would like the flexibility to restrict how credentials are accessed based on the class type of the caller requesting the credential so that I can flexibly restrict credentials without the need to add new scopes.

Acceptance Criteria

Verify that arbitrary classes can be selected for restricting. (e.g. hudson.model.Item)

Additional Information

This will likely require at least 3 new classes (I'm not completely sure):

ClassnameSpecification extending from DomainSpecification.java
ClassnameRequirement extending from DomainRequirement.java
Perhaps a ClassnameMatcher which implements CredentialsMatcher.java (I'm really not sure about this)

I would like the configuration of the DomainSpecification to be similar to how the job restrictions plugin allows configuration of restricting by class. See the following screenshot:

- - Sort By Name
  - Sort By Date
  - Ascending
  - Descending
  - Thumbnails
  - List
  - Download All

screenshot-job-restrictions-plugin-config.png
164 kB
2018-09-27 01:30

Assignee:: Unassigned

Reporter:: Sam Gleske

Votes:: 0 Vote for this issue

Watchers:: 2 Start watching this issue

Created:: 2018-09-27 01:30

Updated:: 2018-10-31 09:59

Jenkins

Details

Description

User Story

Acceptance Criteria

Additional Information

Attachments

Attachments

Activity

People

Dates